We are having an issues with our Win2012R2 RDS setup where the RD Gateway presents an outdated (and since renewed) cert to the end users connecting.
The cert used is not anymore referenced in the deployment (which lists the correct, new certificate)
PS C:\WINDOWS\system32> Get-RDCertificate -ConnectionBroker rd-sx-03.domain.com Role Level ExpiresOn IssuedTo ---- ----- --------- -------- RDRedirector Trusted 06/07/2021 01:59:59 CN=*.domain.com, OU=PositiveSSL Wildcard, OU=Domai... RDPublishing Trusted 06/07/2021 01:59:59 CN=*.domain.com, OU=PositiveSSL Wildcard, OU=Domai... RDWebAccess Trusted 06/07/2021 01:59:59 CN=*.domain.com, OU=PositiveSSL Wildcard, OU=Domai... RDGateway Trusted 06/07/2021 01:59:59 CN=*.domain.com, OU=PositiveSSL Wildcard, OU=Domai...
...and is not even to be found in the certificate stores of the machine. I guess it is somehow cached in some obscure place I am not aware of.
In any case it is pretty confounding... Any idea how to solve this ?